Managing user access

As a Remediate administrator, you can create new user accounts and assign group-based access privileges to them.

When you first install Remediate, you have one default superuser account: admin. Admin users have full access to all Remediate user interface functionality and can add and manage other users.

Role Username Default password Permissions
Administrator admin @Admin
  • Add and remove sources and credentials.
  • Upload scripts and modules.
  • Run tasks.
  • View dashboards.
  • View all node, package, container listing and details pages.
  • Add, update, delete, log out other users.
  • Accept risk for vulnerabilities.

Manage user accounts

As an admin user, you can add, view, update or delete additional user accounts and assign them to groups.

The following groups are available to add to accounts:

Permission Group Description
accept-risk Accept risk for a given vulnerability on selected nodes.
add-credential Add access credentials for a node.
add-source Add a vulnerability scanner or infrastructure source.
add-task Add a new remediation task.
admin Complete first-run configuration. Members of this group also have all the permissions of the admin superuser role except the ability to login into the user administration UI and manage users.
remove-credential Remove access credentials for a node.
remove-source Remove a vulnerability scanner or infrastructure source.
remove-task Remove a new remediation task.
run-task Run a remediation task.

Each group represents a user privilege that be granted to a user account. If you do not add any groups to a user account, that user only has read-only access to the Remediate UI.

In addition to creating user accounts manually, you can also configure remediate to pull user information from your LDAP or Active Directory server.